[xyzzy123]

I don't see that it makes much difference until we know the distribution of issues that Mythos finds and how reliably it discovers them? Vulns from inspection are discovered via a stochastic process of someone looking at the code, knowing about bug classes and paying sufficient attention to notice them. That's still the case.

IMHO the main thing thats interesting about AI assisted bug hunting is that it changes the balance of power from people who had a lot of free time & attention to the state and big business, who have money and frontier model access. It's a broadly "conservative" development in the sense that it distributes more power to groups who've already got it.

Waiting for the cyber "proxy wars" where state A equips deniable groups x, y with frontier access to undermine state B.

[malwrar]

My point is less about Mythos specifically, more what it represents to the general public. “Mythos” has broken through and started gaining popular mindshare like “ChatGPT” did a few years ago. It now becomes hard to (falsely) claim that fixing basic flaws isn’t a priority, because now that everyone knows that it’s probably easier to hack stuff than it was in the past.